edit cli, powershell, and bicep quickstarts

davidsmatlak · davidsmatlak · commit 24df45e65c38 · 2024-02-23T16:04:30.000-08:00
diff --git a/articles/governance/policy/assign-policy-azurecli.md b/articles/governance/policy/assign-policy-azurecli.md
@@ -51,7 +51,7 @@ The Azure CLI commands use a backslash (`\`) for line continuation to improve re
 
 ## Create policy assignment
 
-Use the following commands to create a new policy assignment for your resource group. This example uses an existing resource group that contains a virtual machine _without_ managed disks. The resource group is the scope for the policy assignment.
+Use the following commands to create a new policy assignment for your resource group. This example uses an existing resource group that contains a virtual machine _without_ managed disks. The resource group is the scope for the policy assignment. This example uses the built-in policy definition [Audit VMs that do not use managed disks](https://github.com/Azure/azure-policy/blob/master/built-in-policies/policyDefinitions/Compute/VMRequireManagedDisk_Audit.json).
 
 Run the following commands and replace `<resourceGroupName>` with your resource group name:
 
diff --git a/articles/governance/policy/assign-policy-bicep.md b/articles/governance/policy/assign-policy-bicep.md
@@ -1,7 +1,7 @@
 ---
 title: "Quickstart: Create policy assignment using Bicep file"
 description: In this quickstart, you create an Azure Policy assignment to identify non-compliant resources using a Bicep file.
-ms.date: 02/20/2024
+ms.date: 02/23/2024
 ms.topic: quickstart
 ms.custom: subject-bicepqs, devx-track-bicep, devx-track-azurecli, devx-track-azurepowershell
 ---
@@ -23,7 +23,7 @@ In this quickstart, you use a Bicep file to create a policy assignment that vali
 
 ## Review the Bicep file
 
-The Bicep file creates a policy assignment for a resource group scope and assigns the built-in policy definition [Audit VMs that do not use managed disks](https://github.com/Azure/azure-policy/blob/master/built-in-policies/policyDefinitions/Compute/VMRequireManagedDisk_Audit.json). For a list of available built-in policies, see [Azure Policy samples](./samples/index.md).
+The Bicep file creates a policy assignment for a resource group scope and assigns the built-in policy definition [Audit VMs that do not use managed disks](https://github.com/Azure/azure-policy/blob/master/built-in-policies/policyDefinitions/Compute/VMRequireManagedDisk_Audit.json).
 
 Create the following Bicep file as _policy-assignment.bicep_.
 
@@ -100,6 +100,8 @@ Get-AzResourceProvider -ProviderNamespace 'Microsoft.PolicyInsights' |
 Register-AzResourceProvider -ProviderNamespace 'Microsoft.PolicyInsights'
 ```
 
+For more information, go to [Get-AzResourceProvider](/powershell/module/az.resources/get-azresourceprovider) and [Register-AzResourceProvider](/powershell/module/az.resources/register-azresourceprovider).
+
 # [Azure CLI](#tab/azure-cli)
 
 ```azurecli
@@ -111,6 +113,8 @@ az provider show \
 az provider register --namespace Microsoft.PolicyInsights
 ```
 
+The Azure CLI commands use a backslash (`\`) for line continuation to improve readability. For more information, go to [az provider](/cli/azure/provider).
+
 ---
 
 The following commands deploy the policy definition to your resource group. Replace `<resourceGroupName>` with your resource group name:
@@ -146,7 +150,7 @@ az deployment group create \
   --template-file policy-assignment.bicep
 ```
 
-The `rgname` variable uses an expression to get your resource group's name used in the deployment command. The Azure CLI commands use a backslash (`\`) for line continuation to improve readability.
+The `rgname` variable uses an expression to get your resource group's name used in the deployment command.
 
 - `name` is the deployment name displayed in the output and in Azure for the resource group's deployments.
 - `resource-group` is the name of your resource group where the policy is assigned.
@@ -175,6 +179,8 @@ PolicyAssignmentId : /subscriptions/{subscriptionId}/resourcegroups/{resourceGro
 Properties         : Microsoft.Azure.Commands.ResourceManager.Cmdlets.Implementation.Policy.PsPolicyAssignmentProperties
 ```
 
+For more information, go to [Get-AzPolicyAssignment](/powershell/module/az.resources/get-azpolicyassignment).
+
 # [Azure CLI](#tab/azure-cli)
 
 The `rgid` variable uses an expression to get the resource group's ID used to show the policy assignment.
@@ -209,6 +215,8 @@ The output is verbose but resembles the following example:
 ]
 ```
 
+For more information, go to [az policy assignment](/cli/azure/policy/assignment).
+
 ---
 
 ## Identify non-compliant resources
@@ -258,6 +266,8 @@ ComplianceState          : NonCompliant
 AdditionalProperties     : {[complianceReasonCode, ]}
 ```
 
+For more information, go to [Get-AzPolicyState](/powershell/module/az.policyinsights/Get-AzPolicyState).
+
 # [Azure CLI](#tab/azure-cli)
 
 ```azurecli
@@ -270,9 +280,7 @@ policyid=$(az policy assignment show \
 az policy state list --resource $policyid --filter "(isCompliant eq false)"
 ```
 
-The `policyid` variable uses an expression to get the policy assignment's ID.
-
-The `filter` parameter limits the output to non-compliant resources.
+The `policyid` variable uses an expression to get the policy assignment's ID. The `filter` parameter limits the output to non-compliant resources.
 
 The `az policy state list` output is verbose, but for this article the `complianceState` shows `NonCompliant`.
 
@@ -283,6 +291,8 @@ The `az policy state list` output is verbose, but for this article the `complian
 "isCompliant": false,
 ```
 
+For more information, go to [az policy state](/cli/azure/policy/state).
+
 ---
 
 ## Clean up resources
diff --git a/articles/governance/policy/assign-policy-powershell.md b/articles/governance/policy/assign-policy-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: "Quickstart: Create policy assignment using Azure PowerShell"
 description: In this quickstart, you create an Azure Policy assignment to identify non-compliant resources using Azure PowerShell.
-ms.date: 02/16/2024
+ms.date: 02/23/2024
 ms.topic: quickstart
 ms.custom: devx-track-azurepowershell
 ---
@@ -45,9 +45,11 @@ To verify if `Microsoft.PolicyInsights` is registered, run `Get-AzResourceProvid
 Register-AzResourceProvider -ProviderNamespace 'Microsoft.PolicyInsights'
 ```
 
+For more information, go to [Get-AzResourceProvider](/powershell/module/az.resources/get-azresourceprovider) and [Register-AzResourceProvider](/powershell/module/az.resources/register-azresourceprovider).
+
 ## Create policy assignment
 
-Use the following commands to create a new policy assignment for your resource group. This example uses an existing resource group that contains a virtual machine _without_ managed disks. The resource group is the scope for the policy assignment.
+Use the following commands to create a new policy assignment for your resource group. This example uses an existing resource group that contains a virtual machine _without_ managed disks. The resource group is the scope for the policy assignment. This example uses the built-in policy definition [Audit VMs that do not use managed disks](https://github.com/Azure/azure-policy/blob/master/built-in-policies/policyDefinitions/Compute/VMRequireManagedDisk_Audit.json).
 
 Run the following commands and replace `<resourceGroupName>` with your resource group name:
 
@@ -97,6 +99,12 @@ Properties         : Microsoft.Azure.Commands.ResourceManager.Cmdlets.Implementa
 
 For more information, go to [New-AzPolicyAssignment](/powershell/module/az.resources/new-azpolicyassignment).
 
+If you want to redisplay the policy assignment information, run the following command:
+
+```azurepowershell
+Get-AzPolicyAssignment -Name 'audit-vm-managed-disks' -Scope $rg.ResourceId
+```
+
 ## Identify non-compliant resources
 
 The compliance state for a new policy assignment takes a few minutes to become active and provide results about the policy's state.
@@ -120,8 +128,6 @@ The `$complianceparms` variable uses splatting to create parameter values used i
 - `PolicyAssignmentName` specifies the name used when the policy assignment was created.
 - `Filter` uses an expression to find resources that aren't compliant with the policy assignment.
 
-For more information, go to [Get-AzPolicyState](/powershell/module/az.policyinsights/Get-AzPolicyState).
-
 Your results resemble the following example and `ComplianceState` shows `NonCompliant`:
 
 ```output
@@ -146,6 +152,8 @@ ComplianceState          : NonCompliant
 AdditionalProperties     : {[complianceReasonCode, ]}
 ```
 
+For more information, go to [Get-AzPolicyState](/powershell/module/az.policyinsights/Get-AzPolicyState).
+
 ## Clean up resources
 
 To remove the policy assignment, run the following command:
